add lima integration step to doc

olamilekan000 · olamilekan000 · commit 8c6fe32eb749 · 2025-09-28T03:14:33.000+01:00
Signed-off-by: olalekan odukoya &lt;odukoyaonline@gmail.com&gt;
diff --git a/docs/content/setup/integrations.md b/docs/content/setup/integrations.md
@@ -59,3 +59,96 @@ them to OpenFGA queries.
 
 !!! info "Third Party Solutions"
     A third-party example of such a webhook would be Platform Mesh's [rebac-authz-webhook](https://github.com/platform-mesh/rebac-authz-webhook).
+
+## Lima
+You can run kcp inside a [Lima](https://github.com/lima-vm/lima)-managed VM, which makes it portable across macOS, Linux, and Windows (via WSL2). This setup gives you a disposable kcp control plane that integrates smoothly with your host kubectl.
+
+1. Create a Lima template for kcp
+ - Save the following as `kcp.yaml`:
+ ```yaml
+minimumLimaVersion: 1.1.0
+
+base: template://_images/ubuntu-lts
+
+mounts: []
+
+containerd:
+  system: false
+  user: false
+
+provision:
+- mode: system
+  script: |
+    #!/bin/bash
+    set -eux -o pipefail
+    command -v kcp >/dev/null 2>&1 && exit 0
+
+    export DEBIAN_FRONTEND=noninteractive
+    apt-get update
+    apt-get install -y curl wget
+
+    KCP_VERSION=$(curl -s https://api.github.com/repos/kcp-dev/kcp/releases/latest | grep tag_name | cut -d '"' -f 4)
+    KCP_VERSION_NO_V=${KCP_VERSION#v}
+
+    wget https://github.com/kcp-dev/kcp/releases/download/${KCP_VERSION}/kcp_${KCP_VERSION_NO_V}_linux_arm64.tar.gz
+    tar -xzf kcp_${KCP_VERSION_NO_V}_linux_arm64.tar.gz
+    mv bin/kcp /usr/local/bin/
+    chmod +x /usr/local/bin/kcp
+    rm -f kcp_${KCP_VERSION_NO_V}_linux_arm64.tar.gz
+
+    mkdir -p /var/.kcp/
+    sudo chmod 755 /var/.kcp
+    nohup kcp start --root-directory=/var/.kcp/ --bind-address=127.0.0.1 > /var/log/kcp.log 2>&1 &
+
+probes:
+- script: |
+    #!/bin/bash
+    set -eux -o pipefail
+    if ! timeout 30s bash -c "until sudo test -f /var/.kcp/admin.kubeconfig; do sleep 3; done"; then
+      echo >&2 "kcp is not running yet"
+      exit 1
+    fi
+  hint: |
+    The kcp control plane is not ready yet.
+    Run "limactl shell kcp sudo journalctl -f" to check system logs.
+
+copyToHost:
+- guest: "/var/.kcp/admin.kubeconfig"
+  host: "{{ '{{.Dir}}' }}/copied-from-guest/kubeconfig.yaml"
+  deleteOnStop: true
+
+message: |
+  To run `kubectl` on the host (assumes kubectl is installed), run:
+  ------
+  export KUBECONFIG="{{ '{{.Dir}}' }}/copied-from-guest/kubeconfig.yaml"
+  kubectl get workspaces
+  ------
+
+ ```
+2. Initialize the VM
+```sh
+limactl create --name=kcp ./kcp.yaml
+```
+
+3. Start the VM
+```sh
+limactl start kcp --vm-type=qemu
+```
+Note: On macOS, Lima may default to vz (Apple Virtualization), while on Linux it defaults to qemu, and on Windows to wsl2. If you want consistency across environments, you can explicitly pass --vm-type=qemu when starting the VM.
+
+4. Export the KCP kubeconfig
+```sh
+export KUBECONFIG="/Users/<user>/.lima/kcp/copied-from-guest/kubeconfig.yaml"
+```
+
+5. Verify API resources
+```sh
+kubectl api-resources | grep kcp
+```
+You should see kcp-specific resources such as:
+```sh
+workspaces             ws   tenancy.kcp.io/v1alpha1   false   Workspace
+logicalclusters             core.kcp.io/v1alpha1     false   LogicalCluster
+...
+```
+
